Live Jobs
Discover and Apply for Jobs
STS Architect (m/f/d)
Contract
Luxembourg, Luxembourg
27.06.2025
We are looking for a STS Architect with expertise in PrivX to join our client, an EU Institution.
Context
The role is part of a large team of architects; this team designs services that are consumed by applications in various domains. We are seeking a skilled Architect to lead the design and implementation of PrivX, CAMS, and related Privileged Access Management (PAM) solutions. The ideal candidate will have a strong background in cybersecurity, cloud environments, and PAM technologies.
Overall Job Description
The Security and Compliance Architect holds a critical position, ensuring that our corporate information systems not only comply with but also excel beyond the standards such as CMMI and ISO.
This role demands a sophisticated blend of compliance oversight coupled with a robust technical skill set in planning, prototyping, engineering, implementing, operating, and monitoring complex information systems.
The architect will ensure systems' security, enhance operational efficiency, and guarantee adherence to necessary regulatory compliance standards, with a particular emphasis on cloud solutions.
Activities (Proactive and Reactive)
This role demands a sophisticated blend of compliance oversight coupled with a robust technical skill set in planning, prototyping, engineering, implementing, operating, and monitoring complex information systems.
The architect will ensure systems' security, enhance operational efficiency, and guarantee adherence to necessary regulatory compliance standards, with a particular emphasis on cloud solutions.
- Good knowledge of compliance standards: spearhead compliance projects to certify that all corporate information systems meet or exceed these benchmarks.
- Expert system architecture and engineering: perform detailed hands-on work related to designing, prototyping, and engineering of cybersecurity solutions, extending to configuring and operating cloud Security. Evaluate and enhance existing systems for better efficiency and compliance, and design new cybersecurity architectures to fulfil evolving requirements. Develop and maintain the architecture for PAM, CAMS, and SAM solutions, ensuring scalability, security, and efficiency.
- Operational excellence and security management: oversee the daily operations of cybersecurity systems (e.g. Vulnerability Scanners), prioritizing stability, performance, and security. Implement continuous monitoring strategies to detect and actively remediate vulnerabilities to meet SLA requirements, including cloud security capabilities to safeguard information integrity and reliability. Lead the deployment and integration of PrivX and CAMS within hybrid and multi-cloud environments
- Strategic stakeholder engagement: collaborate with internal stakeholders, including Service squads, operational leaders in various CoEs, and senior management, to ensure that cybersecurity practices are seamlessly integrated with organizational strategic goals and compliance demands.
- Audit, reporting, and progressive improvement: conduct comprehensive audits of information systems to assess compliance with required standards and identify improvement opportunities. Generate detailed reports on audit outcomes, system performance, and compliance status. Lead efforts to mitigate gaps and enhance system capabilities, with an emphasis on continuous improvement.
- Knowledge sharing and mentorship: Offer expert advice and training to team members and stakeholders on compliance standards, best practices in system security, and technical procedures, including those related to cloud security solutions. Ensure all team members possess the necessary knowledge and skills to support compliance and security efforts effectively.
- Five or more years of experience in multiple IT areas and At least three years working in medium- to large-scale IT environments as a security architect or other security design functions.
- PAM, SAM and CAMS (Privx, Luna,Ciphertrust,Hashicorp Vault…)
- Advanced Cybersecurity knowledge and experience is required.
- Exposure and knowledge to industry standards (e.g. CMMI, ISO 9001) is an important asset.
- Cloud- certification or proven expertise in AWS security solutions are a plus.
- University degree in Information Technology, Computer Science, Cybersecurity, or related field. In lieu of a degree, equivalent years of experience in information technology, system architecture, and/or cybersecurity will be considered.
- Advanced Cybersecurity Certification (e.g. CISSP, CISM, or equivalent) is a differentiator.
- Very good understanding of network security concepts
- Excellent understanding of authentication and authorisation mechanisms and protocols
- Cryptography and latest cryptographic standards, including PKI
- Working knowledge of the OWASP Top 10
- Full-stack knowledge of IT infrastructure:
- Applications
- Databases
- Operating systems — Windows, Unix, and Linux
- IP networks — WAN and LAN
- Knowledge of DevSecOps
- Knowledge of API Architectures
- Ability to work and communicate in a multi-cultural environment.
- Service-oriented mindset.
- Ability to communicate in writing and verbally in a clear and concise manner.
- Initiative, accuracy, and attention to detail
- Fluency in English (written and spoken) is essential. Any other European language is a plus.
#LI-EE1